The Homelab Show Episode 41: Network Segmentation, VLAN, And Subnets

Jay, thanks for sharing your early experience being confused by submitting, vlans, and segmentation. That was true to my experience, but nobody would guessed that you ever had trouble. I think it's important for folks new to it to know it isn't always easy to understand right out of the gate.

We all have to start somewhere, so just keep poking at it.

mikelambert

Just managed to watch it now due to time zone difference. But will still listen through every morning.

TanKianW

You answered my "stickler" question. If you subnet everything up, how do you stop forcing everything through the router.
Answer: Put devices onto more than one vlan/subnet directly. Then they can access it layer 2 without routing.

over

Wow Jay, when it come to subnet addressing and the schema of network devices we must have been cut from much of the same cloth.

popquizzz

Speaking of "Not segmentet by default", its important to remember the difference between a router and a firewall. A router is not suppose to segment by default, thats the firewall behavior. On a router we primarily divide networks, to limit the size of our broadcast domains.

kjakobsen

while preventing broadcast storms is cool and all....there is certain traffic that needs broadcasts such as DHCP for discovery. when splitting the network you may need "ip helpers" to advise clients on the different segment the location of the DHCP service

hiddeninthewires

Can you please do an in-depth video on UniFi remote adoption and port forwarding ports for cloud key with the fully qualified domain name override and how to preset up the units before deploying them so when they are installed at the customer site that they automatically reach out to the cloud key thanks again

devinwilkes

Haven't checked your channel out yet, but I'm excited to see it! Does someone need to watch the past 40 episodes from the beginning or can we jump around? Thanks!

pkmplayer

Eventually I'll want to hire you guys, not a doubt in my mind.

johnf

“Like getting locked out” - Jay

I feel attacked

Visdomr

Very informative thank you …. I’ve been playing with my network trying to add a pfsense box to use with my UDM Pro has been a fun endeavor to say the least . I wish UniFi didn’t cripple a mostly great device lol ended up trying to make a vlan only network on the UDM and then tagging all the ports I want on all my switches to that vlan and then plug the pfsense box to one of them to use it’s DHCP server . And then double NAT the UDM Pro . Still testing it to see how it works and leaning in the process

michaelrousseau

If you “need” to segment your network to control WAN congestion, you obviously lack QoS on the firewall.

Even easier: Simply configure a limit, per port, on the Ethernet switch.

pepeshopping

What's the name of the standard? RSV-19 or RSB-19? Where do I find more information on the standard itself?

teachit

I am hoping you can revisit SyncThing set up AND Unifi USG setup, with phone. If phone is on a separate network, relay enable has to be turned on in SyncThing. If relay enable is turned Unifi detects threats.

DanielleEmberley

✨✨ THANK YOU!! Appreciate the content, Tom!!

00:01:25:00 into the video, BAM TWO NON SKIPPABLE advertisements.
I sincerely pray 🤲 YouTube fails for forcing obnoxious, unnecessary, hated, irrelevant ads - furthermore, G AdSense advertisement team all get lined up and golden showered. Hopefully they all step in dog shiat every single day for the rest of their lives.

m.m.m.c.a.k.e